- 0 Posts
- 11 Comments
To me it seems they’re behaving (driving? riding?..) in a very surprising/unsafe manner on the road. Admittedly I’m from a country with a completely different driving culture. Do people just ride scooters like that in China?
Also, there’s this interesting legal question of who is responsible when one of those things crashes into a car or a pedestrian.
Other than that, this is cool as heck and I want my bicycle to do the same now.
For example, in the US, Samsung has had locked bootloaders on all its phones since the Galaxy S7.
Yikes. While shopping for a new phone last year I was under the impression that at least in the European market they still allow you to unlock the bootloader, even on the latest models. The catch is that there’s pretty much no third-party Android distros that work with the phones, because they don’t release drivers or kernel patches and people have to scrape them from first-party OS images, which sounds horrible.
You can (on most Android phones) run an Android fork that doesn’t have Google services running and gets software and updates from elsewhere, e.g. GrapheneOS. Can’t do that with an iPhone. I get that you’re still ultimately dependent on Google to continue Android development and make security updates, but it’s way less of a dependency. And yes, GNU-ish Linux on phones would be awesome.
The article is very light on details, but the numbers don’t seem to check out at all. Back-of-the napkin math (assuming a square 1km × 1km solar array and total sun luminosity of 3.83e26 W):
1 km ^ 2 * (3.83e26 W) / (4 * π * (1 AU) ^ 2) * 1 year to TWh ≈ 11.94 TW·h
This is a “measly” 12 TWh of TOTAL energy delivered to the array over a year - not accounting for solar panel efficiency losses (20-24%) or the elephant in the room of transmitting this energy back to earth. For context, China alone consumed around 39 PWh (39000 TWh) of energy from fossil fuels just over the course of one year, 2023. The entire world consumed 55 PWh (55000 TWh) of oil energy in 2023 alone. It’s not even comparable to the annual consumption of oil. If we consider the aforementioned factors, assuming 24% solar panel efficiency and an extremely generous 50% power transmission efficiency, we get:
1 km ^ 2 * (3.83e26 W) / (4 * π * (1 AU) ^ 2) * 24% * 50% ≈ 163.43 MW
Which is literally nothing on a national scale - it’s less than a percent of the Three Gorges Dam output.
Have you ever tried to use one of those superapps? It’s still a clunky experience overburdened with dozens of useless UI elements eating up screen estate of what I actually care about, and then whenever I wanted to do something for which there’s no sub-app in the super-app it would be difficult due to lack of integrations with “the outside”. That’s even before we question the idea of putting all the eggs functionality in one basket centralized app with one developer entity, allowing them to ultimately control all aspects of one’s online life.
And more philosophically, I’m surprised that as a functional dev you prefer one big tightly coupled combine to a collection of small but useful on their own utilities lightly coupled to produce more than the sum of their parts.
Problem is not how weak or strong the encryption is
Here it’s definitely part of discussion. The context was
It’s encrypted anonymous communication capabilities.
It’s barely anonymous, and poorly encrypted. The latter is the reason Durov is in custody while Signal devs are scott free. He could easily turn illegal stuff over to French authorities, but doesn’t.
The bigger problem is that people somehow assume this a huge threat, while all previous cases didn’t involve anything like that.
There have absolutely been cases where a backdoor/weakness/lack of encryption used to catch criminals before: https://en.wikipedia.org/wiki/Operation_Trojan_Shield https://en.wikipedia.org/wiki/Ennetcom https://en.wikipedia.org/wiki/EncroChat . I distinctly remember that there were also arrests of opposition activists in Russia based on personal messages in VKontakte, but can’t find the news right now.
real criminals do their stuff everywhere (especially on telegram) for years, staying safe.
Some are staying safe, others are being caught precisely because of this.
Problem is not how weak or strong the encryption is, but that once you are under oppression and do opposition activities, you’re going to learn by yourself how to deal with it.
Using better encryption schemes is definitely part of that.
Toy may call it TLS but it’s a custom protocol.
Sure, it’s mtproto. The security it provides for non-encrypted chats (which are the absolute majority of chats) is not any different from just having TLS for transport. It’s potentially even worse as it’s not as well-audited.
Data is not kept unencrypted on their servers, according to their docs.
That just means that they store both your data in some encrypted way and the key. They can still read it trivially. You don’t even have to know the protocol to understand why: you can add new devices without having any other device online, and read all non-secret chats. It might also just mean disk encryption, in which case it’s plain-text in RAM while the server is running.
There’s user to server encryption, just not e2e.
That’s exactly what the comment said: The only encryption that applies to most chats on that platform should be transport encryption via TLS. It’s about the same level of encryption as Lemmy PMs.
The fact that Telegram doesn’t cooperate with French authorities doesn’t mean that it doesn’t cooperate with other authorities or sell your data to the highest bidder. They have all the technical means for it.
Don’t use a regular Telegram chat if your life depends on the messages being private. Use Matrix with E2EE, or at the very least Signal. Heck, even WhatsApp is (reportedly) better, as it claims to provide E2EE and that’s been checked by some security professionals who have been given access to the source code. If you absolutely must use Telegram for something like that, only use secret chats.
Telegram is categorically less encrypted than Signal for most chats. It’s mostly the same level of security as Facebook Messenger, Instagram DMs, even Email (SMTP/IMAP over TLS) or SMS: it only encrypts communications between the client and the server. Telegram can read everything you send in regular chats. The only way to get end-to-end encryption (such that Telegram technically can’t access your communication) is by starting a fussy and inconvenient “secret chat”. It can only be done between two people (so no E2E group chats at all), only when both are online at the same time, and it only works on the devices on which the secret chat was initiated and accepted; in other words, as a frequent user I’ve only used it once for some really sensitive personal information. Even then Telegram still has access to a lot of metadata about messages: phone numbers of both parties, when the messages are sent, how big they are, etc.
I’m not saying that cooperating with intelligence/LE agencies is always an ethical, or even a good choice, but Telegram demonstrably had the ability to do so.
No. Just look at the current phone market. The average consumer doesn’t care enough about repairs down the road, or at least it doesn’t affect their purchasing decisions, they are mostly driven by convenience and familiarity. If what you’re saying was true, everyone would be buying fairphones.
Those specs are already widely available for many phones and in fact you can buy aftermarket 3rd-party batteries for most of them. The problem is that battery replacements are painful, require specialized equipment (at least a hotplate, suction cup, spudger for most phones) and skills (not breaking the screen/glass back, unglueing the battery without exploding it, then carefully glueing everything back together etc). This is what the law should be addressing first; if it were easy to replace batteries (like a 1-minute job instead of 30-minute job), you would see a lot more DYI replacements and probably way longer lasting phones on average.